The University of Rochester is a well-known school in Western New York that caters to more than 12,000 students annually. The school employs nearly twice as many staff members overall, and all of those people entrust the institution with some data. That's why it's so concerning that the University recently suffered a data breach. The school was breached, and during that breach, a substantial amount of data is believed to be lost.
At this time, we don't know what information was taken from the University during the breach. We only know that it's likely student data was involved and that personal information was lost. It's possible the information can be used for harmful credit and identity theft attacks, and we suspect phishing attacks will result from the lost information in the breach as well.
According to representatives from the University of Rochester, data was lost to the breach because a third-party program used by the school had security vulnerabilities. Those vulnerabilities enabled attackers to gather school data transferred using the third-party service, and the university, along with more than 2,500 other organizations, lost data as a result of this breach.
The school first noticed the breach on June 3, 2023. It was announced shortly after it was discovered, and students and staff were urged to update their passwords and to protect themselves as effectively as they can.
We have no way of knowing who the Rochester University breach impacts specifically, but we suspect that students and faculty members at the school will both suffer some repercussions because of this breach.
The total University of Rochester file count isn't available currently, and an investigation is still going on in an attempt to determine what information was involved in the breach overall.